CVE-2020-0221
CRITICALAndroid - Memory Corruption via Airbrush FW Scratch Memory Allocator Overflow
Title source: llmDescription
Airbrush FW's scratch memory allocator is susceptible to numeric overflow. When the overflow occurs, the next allocation could potentially return a pointer within the previous allocation's memory, which could lead to improper memory access.Product: AndroidVersions: Android kernelAndroid ID: A-135772851
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://source.android.com/security/bulletin/pixel/2020-05-01
Scores
CVSS v3
9.8
EPSS
0.0047
EPSS Percentile
36.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-682
Status
published
Products (1)
google/android
Published
May 14, 2020
Tracked Since
Feb 18, 2026